Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: y/wGEO7shxyfkihGRpW4M58cvqj7IlZjX9v0ISGal6s=
Subject key identifier: CF:24:CB:F3:FB:C3:43:AB:AB:99:A6:E0:E0:D4:B0:1F:91:8A:F6:8B
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019A4FD0296347F4770260329598D6B93652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0F08
Signing time: Tue 04 Nov 2025 17:00:33 +0000
Manifest this update: Tue 04 Nov 2025 17:00:33 +0000
Manifest next update: Wed 05 Nov 2025 17:00:33 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: ONaWE0TlaajC5l6cvFcNcGyrvDg02qQW105O8/IOuaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:29:63:47:f4:77:02:60:32:95:98:d6:b9:36:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Nov 4 17:00:33 2025 GMT
Not After : Nov 5 17:00:33 2025 GMT
Subject: CN=cf24cbf3fbc343abab99a6e0e0d4b01f918af68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:96:90:34:d3:fb:d8:86:0a:6c:7b:d5:4d:fe:
73:67:b5:b3:50:b4:ae:7a:d2:c5:e2:ab:8f:7f:c5:
5f:a7:80:19:6e:6f:10:5c:ad:7a:5a:21:6a:d4:27:
e3:ef:a0:a7:ea:e8:1e:10:b0:c2:e8:6c:06:ae:f6:
2c:13:19:6b:4c:9f:82:68:ed:24:e9:8b:f2:23:3e:
7b:80:6b:4a:e2:61:51:00:f7:64:85:e2:9b:57:18:
6f:df:ce:07:34:a1:06:25:05:4b:7d:1c:ca:f2:f9:
ed:bd:46:89:1c:15:be:a2:1e:83:bf:16:ff:b0:c4:
b9:ee:09:c7:50:72:57:16:a9:54:7d:c3:ed:fb:61:
41:0c:b5:bf:13:74:57:5b:cb:8b:2b:7c:f2:ad:56:
2f:21:7b:d9:90:2b:a2:37:3c:15:5d:95:97:e4:06:
00:19:49:e7:8f:af:f8:e2:41:7f:08:3b:4e:e7:11:
50:57:19:65:9b:1f:46:49:de:0b:d2:69:f5:4d:94:
b3:c9:e1:4c:a0:43:01:27:7c:66:92:d7:a4:24:a9:
ad:ee:b9:ed:13:17:07:6c:07:97:68:40:16:b8:9b:
dd:90:1b:54:f3:43:37:d6:65:4b:f2:56:95:58:13:
39:56:d5:75:45:bc:63:7f:5d:98:c3:f6:45:1e:11:
4b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:24:CB:F3:FB:C3:43:AB:AB:99:A6:E0:E0:D4:B0:1F:91:8A:F6:8B
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1a:49:6c:23:44:d6:79:06:60:0f:1e:7a:f2:d9:e5:a0:72:
cd:57:f4:68:48:66:e4:cf:48:95:49:aa:54:c5:07:db:14:9b:
21:59:9d:df:90:3f:37:7a:4c:f5:05:e7:f3:66:4e:86:bc:70:
ee:9e:9f:d3:6c:bd:37:39:91:7f:9e:af:d7:33:39:ec:ea:f7:
16:34:57:79:ca:29:3e:4d:bc:48:12:fd:c1:66:7b:ad:c7:22:
e1:1d:df:01:80:db:a3:3a:4d:36:48:20:1c:1d:5d:2c:f6:e9:
46:53:6f:b1:09:28:cd:9f:64:45:1b:79:48:fe:68:d1:42:ba:
7b:6a:9d:2d:ef:3a:a6:c7:a1:54:f8:2c:22:e1:f6:23:f8:a0:
3c:99:4b:16:db:c0:8b:04:76:7d:4f:d5:c7:75:b8:ca:aa:44:
6e:33:6b:8f:18:34:97:3f:2a:4a:44:74:0d:c8:f7:5e:c8:3b:
e5:f9:d5:98:dd:2e:f8:a7:76:97:64:b9:bb:01:93:85:5f:dd:
6c:40:24:54:11:73:8f:c6:69:b7:e8:6d:d0:b3:21:67:5f:52:
9e:c0:1a:10:59:c8:75:28:dd:7a:1a:86:6c:43:57:85:bf:54:
b0:c7:83:a3:cd:a6:4c:c2:56:ca:88:97:67:21:6b:d7:ee:53:
80:49:89:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:44:01 2025 by rpki-client